Vulnerable WordPress Plugins Report for the Week of June 21, 2019

Vulnerable Plugins

There are twenty issues this week, with three unfixed. The most critical this week are an Arbitrary Settings Update vulnerability in Real Estate Manager (unfixed), a Cross-Site Request Forgery vulnerability that can lead to an Arbitrary File Upload in LionScripts: IP Blocker Lite (fix available), and a Cross-Site Request Forgery vulnerability that can lead to an Options Update vulnerability in Facebook for WooCommerce (fix available).